Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/q87HXBTcApdAZP25-6tvBT8d6VA.roa
File: q87HXBTcApdAZP25-6tvBT8d6VA.roa (raw, json)
Hash identifier: 9439ugf7rmdKHjXAe4u+5xMGvtydisemMQnueKe8ZLY=
Subject key identifier: AB:CE:C7:5C:14:DC:02:97:40:64:FD:B9:FB:AB:6F:05:3F:1D:E9:50
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 018D3053C09CCA7C04DC916557678159863D
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/q87HXBTcApdAZP25-6tvBT8d6VA.roa
Signing time: Mon 22 Jan 2024 08:40:11 +0000
ROA not before: Mon 22 Jan 2024 08:40:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 45.146.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 11:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:53:c0:9c:ca:7c:04:dc:91:65:57:67:81:59:86:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 22 08:40:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=abcec75c14dc02974064fdb9fbab6f053f1de950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:38:c6:f1:8d:a3:2f:c6:ea:65:0f:fc:4c:
99:30:15:97:02:9d:c6:ad:fc:42:df:6a:a3:55:fd:
48:34:f5:86:af:a8:7d:6a:2f:09:bd:ac:c9:d0:40:
39:42:aa:c0:fb:d5:ca:76:5e:8a:cc:8a:78:17:9d:
a9:63:ab:ba:df:9b:ca:ec:eb:d3:77:be:86:d7:17:
59:85:f9:96:ee:f9:67:4d:41:b4:7b:75:dc:22:4e:
5b:0d:f2:39:1f:a4:3c:fb:e6:25:6d:4c:e0:09:1c:
af:97:2e:9c:ca:59:ee:42:25:34:14:b1:e8:7e:b2:
7d:52:97:0b:72:24:ee:ec:d6:3f:12:64:95:99:49:
93:23:d4:92:c0:d0:13:5c:7b:54:96:cd:96:7c:a6:
12:af:01:ab:6b:d5:13:5b:79:a2:b9:a3:7b:15:a9:
70:82:1e:a3:f1:1f:e8:3f:bf:64:eb:6d:b4:00:6e:
25:99:7b:cb:3a:74:ab:ec:24:99:d2:3d:26:d7:7f:
3d:6e:62:08:bb:63:67:f6:4a:ad:2b:bb:66:41:f6:
4a:1e:59:a0:57:1d:3e:4e:62:92:dd:64:ba:55:2c:
7a:8d:63:46:ae:b6:1b:d2:d8:19:4b:dc:c2:34:48:
df:0f:1e:78:c5:ac:63:52:f9:e0:e6:40:2b:d3:c7:
99:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:CE:C7:5C:14:DC:02:97:40:64:FD:B9:FB:AB:6F:05:3F:1D:E9:50
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/q87HXBTcApdAZP25-6tvBT8d6VA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.203.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:16:38:de:b0:4f:21:9c:c4:9e:44:ce:4a:00:91:39:d7:05:
e3:c0:72:bf:bf:f4:eb:43:5f:9f:8a:9c:0d:9e:06:f5:ce:9b:
b0:d9:07:4b:9a:ea:63:b3:1f:05:36:d1:4d:42:5f:32:c0:6f:
b0:b4:cd:2c:5d:d5:63:df:2a:65:ba:87:85:0b:b3:77:63:6a:
54:8d:a5:d1:6d:b6:01:cd:6d:db:73:90:55:39:ca:49:51:ac:
06:d9:6e:31:32:21:a9:0b:5a:ca:b9:cd:4d:4b:b8:4c:35:ca:
8c:15:08:56:c3:9f:8d:47:4a:c6:24:12:56:93:82:cd:6b:73:
9d:bc:7a:e5:8d:d1:a9:c5:e8:99:c6:3c:c2:62:76:e8:15:af:
f1:fe:17:d3:5c:d6:39:d9:8b:fb:d1:6d:61:ef:9f:e0:8f:5d:
39:9a:a4:26:2c:93:c2:aa:94:f7:7a:3e:2a:dd:22:d7:ef:81:
05:61:10:06:f1:73:8b:df:c0:8f:a5:30:04:ce:fd:7d:a7:05:
cd:df:61:fa:d2:81:90:05:22:49:92:e9:5d:53:d4:26:c6:7e:
ca:55:56:2d:19:c6:72:b8:af:f2:d9:dd:e1:1a:30:6e:47:c6:
62:a8:07:2a:67:7d:ac:4d:6b:96:39:4e:5a:4f:00:8c:d6:59:
6e:dd:8e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 15:54:51 2024 by rpki-client on console-ams.rpki-client.org